Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/1MzrKYqKiMkdi82YbKIrSvpwt0M.roa
File: 1MzrKYqKiMkdi82YbKIrSvpwt0M.roa (raw, json)
Hash identifier: 7C/x61ptmnldCIl9qkgb/Xcf3WXq6XIkpbCs6LXZpS8=
Subject key identifier: D4:CC:EB:29:8A:8A:88:C9:1D:8B:CD:98:6C:A2:2B:4A:FA:70:B7:43
Certificate issuer: /CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Certificate serial: 0190BAB618FDED3D262D3A734202315739CE
Authority key identifier: D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/1MzrKYqKiMkdi82YbKIrSvpwt0M.roa
Signing time: Tue 16 Jul 2024 08:43:34 +0000
ROA not before: Tue 16 Jul 2024 08:43:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208334
IP address blocks: 185.72.49.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ba:b6:18:fd:ed:3d:26:2d:3a:73:42:02:31:57:39:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9ad18f4c36067220f4d833cbc78a10f94eb0888
Validity
Not Before: Jul 16 08:43:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d4cceb298a8a88c91d8bcd986ca22b4afa70b743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ce:a8:f9:96:d1:93:27:0c:d5:7a:d3:70:59:
ae:45:76:b1:e6:8a:f0:45:0f:5a:4a:0c:cc:ec:90:
04:69:f1:c1:f6:49:f4:97:57:5f:32:72:b9:d0:41:
72:df:c9:57:c1:3a:7c:c6:dc:d3:98:96:ea:6d:dc:
aa:c6:54:e8:d8:f3:0d:ec:74:92:5f:46:95:f8:e1:
12:8d:2d:8f:5e:39:99:58:63:94:e3:ac:f9:52:60:
49:70:0e:02:97:05:b5:02:a8:f7:31:ff:d4:11:85:
93:ea:f8:e8:9d:fb:f2:ce:1a:88:bf:64:82:5f:e3:
71:f6:17:35:d4:fe:39:0e:d1:10:41:b4:38:ed:7c:
63:ab:bc:3e:f9:da:1a:4a:40:ed:a8:fd:57:2b:35:
62:6d:fd:dc:2a:20:a0:ae:43:bd:95:6f:0f:cf:24:
98:44:0e:18:7e:e5:c6:68:de:d2:8b:f8:1d:96:ba:
ae:b3:40:30:76:7f:6d:25:a1:54:6f:7c:79:82:9a:
58:ac:a8:28:c6:a1:3a:97:39:5f:b5:4b:4b:ba:8f:
b1:a0:3b:34:a9:17:5a:f1:fe:69:39:92:a2:b6:2f:
26:8d:0c:d8:54:c1:62:4f:1a:16:9d:cf:21:1e:de:
36:c1:3a:d2:06:09:86:b3:a6:30:e8:90:83:10:89:
90:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:CC:EB:29:8A:8A:88:C9:1D:8B:CD:98:6C:A2:2B:4A:FA:70:B7:43
X509v3 Authority Key Identifier:
keyid:D9:AD:18:F4:C3:60:67:22:0F:4D:83:3C:BC:78:A1:0F:94:EB:08:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a0Y9MNgZyIPTYM8vHihD5TrCIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/1MzrKYqKiMkdi82YbKIrSvpwt0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/d351bf-71ce-4857-9e50-c2647385e727/1/2a0Y9MNgZyIPTYM8vHihD5TrCIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.49.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:d3:6e:66:4d:f9:b9:8b:e7:84:e3:e4:e1:55:94:36:7e:a6:
5f:f0:38:6d:22:54:a3:18:31:b1:80:bc:49:5b:98:47:25:b9:
d9:af:10:85:bb:f8:61:46:bf:bc:66:8f:e7:e5:f1:0c:0c:ac:
9a:ca:37:96:e6:36:47:56:b2:d0:9f:61:76:c9:f1:1f:80:42:
a9:94:67:0c:ca:93:ea:bc:a2:35:5b:53:93:11:31:cb:47:12:
8b:a0:28:1d:62:2c:b4:88:de:d4:bc:ec:4b:41:33:b6:f7:9b:
17:75:7d:e2:3b:5b:8b:46:9f:d1:ff:03:6a:af:30:71:d8:da:
30:c7:13:95:ce:e1:a3:ea:28:ed:76:80:78:0f:a8:f6:9b:b8:
7a:e9:61:fc:4b:49:23:54:89:dc:cc:9b:57:aa:16:d5:ec:25:
f3:a2:30:3e:f9:c2:ed:fe:80:77:53:d7:7e:b8:2b:bb:fe:a1:
ac:cf:7c:ca:46:f6:85:6a:85:61:a1:d2:17:18:18:5b:53:9b:
be:16:34:dd:57:fa:6b:35:1c:5f:2f:f8:10:2b:44:5b:f6:8a:
24:4f:bc:e0:74:c4:f7:48:06:96:e4:48:97:c3:a0:21:60:dd:
bb:9c:33:2e:12:9b:11:c9:5a:c0:dc:5b:ff:aa:7c:64:0b:39:
58:62:00:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:23 2024 by rpki-client on console.sobornost.net